icp-identification
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill performs intended business research functions without any detected malicious patterns or security violations.
- [PROMPT_INJECTION]: The skill possesses a surface for indirect prompt injection as it ingests untrusted data from external websites via company URLs.
- Ingestion points:
SKILL.md(Phase 0 and Phase 1 research steps). - Boundary markers: Absent; there are no explicit instructions to ignore embedded instructions in the fetched web content.
- Capability inventory: The skill triggers shell command execution for the
tam-builder.pyscript and hands off context to other lead-finding skills. - Sanitization: No sanitization of external content is specified before it is summarized for the user or passed to downstream scripts.
- [COMMAND_EXECUTION]: The skill provides instructions for the agent to execute a local Python script to perform market mapping.
- Evidence:
python3 skills/capabilities/tam-builder/scripts/tam_builder.pyreferenced inSKILL.mdwith various operational flags. - Safety Context: The instructions explicitly require user approval before database writes and recommend using
--previewand--samplemodes for testing.
Audit Metadata